Tag
follina
Safeguard articles tagged "follina" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Vulnerability Analysis
Follina (CVE-2022-30190) Explained: Code Execution From a Word Document With Macros Off
CVE-2022-30190, Follina, abused the Windows MSDT protocol handler so a Word document could run PowerShell — no macros, no enable-content click. Here is the ms-msdt mechanism.
Jul 4, 20265 min read
Vulnerability Analysis
Follina and the MSDT Lesson: What CVE-2022-30190 Taught About Trusted Handlers
Follina exploited a Microsoft Support Diagnostic Tool URI handler that nobody thought about. The technical mechanics, the rapid exploitation, and the lasting defense lessons.
Feb 14, 20265 min read
Vulnerability Analysis
Follina (CVE-2022-30190): The Microsoft Zero-Day That Bypassed Macro Protections
A Word document, no macros enabled, and full remote code execution. Follina exploited the Microsoft Support Diagnostic Tool via ms-msdt protocol handlers, rendering years of macro-blocking defenses irrelevant.
Jun 10, 20227 min read